Home / bulletins

MS08-021 – Critical: Vulnerability in GDI Could Allow Remote Code Execution (948590) - Version:1.0

Posted on 08 April 2008

There is an newer version: MS08-021 - Version: 1.2

Critical

Severity Rating: Critical - Revision Note: V1.0 (April 8, 2008): Bulletin published.Summary: This critical security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Link

Other versions

 

TOP